VSEC 2017: Second Workshop on Vehicular Security

The Second International Workshop on Vehicular Security (V-SEC 2017) will bring together members of the vehicular security community (industry, government, academia) at the 86th IEEE Vehicular Technology Conference. At this second installment of this workshop series, the latest research findings in this emerging area will be shared and new research opportunities will be identified through the exchange of ideas among the IEEE attendees. The half day V-SEC 2017 workshop will include a tutorial presentation of this emerging area and a series of technical presentations concluding with a panel discussion.

Workshop Program

14:00 – 14:45KEYNOTE PRESENTATION: “Security and Privacy Challenges in Automobile Systems” Dr. Sandip Kundu, US National Science FoundationABSTRACT: As automobiles continue to become increasingly connected to the Internet, the potential for hackers to gain control of the vehicle or certain systems is of growing concern. Furthermore, with the move towards driverless cars and Internet of Things (IoT), industry needs to ramp up its efforts to address ever-evolving, and realistic, data security issues. The attacks comprise of malicious and honest-but-curious privacy threats. Malicious attacks threaten both vehicle and passenger safety. This kind of threats can arise from automotive networks, 3rd party devices, vehicular software or sensors. They may also be introduced by unauthorized agents accessing vehicular controls or updating software. For example, automotive sensor data can be hacked to generate false data, timing attacks, and replay attacks. Multiple automotive networks like Controller Area Network (CAN), Media Oriented Systems Transport (MOST) offer large attack surface. Balancing security of various vehicular access points, protocols and functionalities is a challenging problem. Privacy issues are also of similar concern. By gaining access to a vehicle’s systems, hackers could potentially obtain private information from the vehicle, such as location data, driver habits, companion information or other behavioral data which may be exploited by unauthorized users and cybercriminals alike. In this talk, various facets of automotive security and privacy will be discussed and the contour of the emerging solutions will be presented.BIOGRAPHY: Sandip Kundu is a Program Director at the National Science Foundation in the CNS division within the CISE directorate. He is serving in this position on leave from the University of Massachusetts at Amherst, where he is a professor in Electrical and Computer Engineering Department. He obtained his PhD in 1988 from the University of Iowa and then spent about 17 years in industry before joining academia in 2005. He started his career at IBM Research as a Research Staff Member, and then worked at Intel Corporation as a Principal Engineer before joining UMass Amherst. He has published nearly 250 research papers in VLSI design and test, holds several key patents including ultra-drowsy sleep mode in processors, and has given more than a dozen tutorials at various conferences. He is a Fellow of the IEEE, Fellow of the Japan Society for Promotion of Science (JSPS), Senior International Scientist of the Chinese Academy of Sciences and was a Distinguished Visitor of the IEEE Computer Society. He is currently an Associate Editor of the IEEE Transactions on Dependable and Secure Computing. Previously, he has served as an Associate Editor of the IEEE Transactions on Computers, IEEE Transactions on VLSI Systems and ACM Transactions on Design Automation of Electronic Systems. He has been Technical Program Chair/General Chair of multiple conferences including ICCD, ATS, ISVLSI, DFTS and VLSI Design Conference.

14:45 – 15:30 KEYNOTE PRESENTATION: “Global scale deployment of Trust and Privacy management based on open standards for Cooperative Intelligent Transport Systems (C-ITS)”Dr. Brigitte Lonc, RenaultABSTRACT: Intelligent Transport Systems (ITS) start to be a mature technology: standardisation progress and pre-deployment projects are opening the way to smart mobility. Vehicle–to–Vehicle (V2V) and Vehicle–to–Infrastructure (V2I) communications are paramount for cooperative awareness and safety applications, and must be protected. In recent years a lot of research have been focusing on vehicular communication security and privacy. Current ITS communication security functionality include message authentication and has an impact on vehicles and drivers privacy. At European level, the European Telecommunications Standards Institute (ETSI) has defined a message authentication mechanism based on a Public Key Infrastructure (PKI). In order to serve a huge amount of ITS Stations (ITS– Ss), the Vehicular Public Key Infrastructure has high scalability requirements. The ITS SEcurity (ISE) is a joint private-public research project on Intelligent Transport System (ITS) communication security lead by the IRT SystemX. The project is supported by car manufacturers and suppliers (Renault Group, PSA, Valeo), security suppliers/independent test labs (IDnomic, Trialog, Oppida) and academic (Institut Mines Telecom, IMT). The ISE project has explored infrastructure and embedded aspects of C-ITS security and privacy. On the infrastructure side, we present our results on the Public Key Infrastructure (PKI) development, scalability and interoperability tests. In our measurements campaign we have assessed PKI performance and scalability while replicating the system on hundreds of machines. In particular, we evaluate the communication channel properties impact on system performance and consistency. For the embedded part, we present our security protocols and the performance evaluation of the security stack implementation. ISE project has a tight collaboration with SCOOP@F project and ETSI TC ITS standardization group.BIOGRAPHY: Brigitte Lonc joined Renault since 1988 and is currently innovation project manager and expert in Connected Vehicle (Cyber) Security in the Engineering Systems Department/ Connectivity systems. She is actively contributing to V2X specifications & deployment roadmap in the Car2Car Communication Consortium, to C‐ITS standardization and harmonization in ETSI, IETF, CEN/ISO and in different working groups on security and privacy enhancement of safety cooperative ITS systems (C2C‐CC, EU‐US task force). Since 2014 she is chairing the ETSI ITS WG5 and is project manager of the French SYSTEMX project on ITS Security (project ISE). Her technical expertise is on IT & communication systems, including wireless & mobile communications, embedded SW systems, Web services, security solutions and technologies (smart‐card, NFC and RFID, PKI certificate and key manager). At Renault, she contributed to many R&D projects in the field of the Intelligent Transport Systems (TRASCOM, GST, PRESERVE, COMeSafety, Score@F FOT) and to development projects of the Renault connected services/systems (RLINK). She got a PhD on Computer Science on Protocols formal specification and validation at CNAM‐ Paris in 1987.